OpenVPN is a virtual private network (VPN) system that implements techniques to create secure point-to-point or site-to-site connections in routed or bridged configurations and remote access facilities. It implements both client and server applications. It allows peers to authenticate each other using pre-shared secret keys, certificates or username/password. When used in a multiclient-server configuration, it allows the server to release an authentication certificate for every client, using signatures and certificate authority.
It uses the OpenSSL encryption library extensively, as well as the TLS protocol, and contains many security and control features. It uses a custom security protocol that utilizes SSL/TLS for key exchange. It is capable of traversing network address translators (NATs) and firewalls. It has been ported and embedded to several systems
OpenVPN Access Server installs on a Linux OS with installation options to meet the needs of your network.
VPN clients connect from Microsoft Windows, macOS, iOS, Android, and Linux systems.
User authentication includes a built-in system with web-based management or external authentication with PAM, LDAP, or RADIUS.
VPN tunnels are secured with the OpenVPN protocol using TLS authentication, credentials, certificates, and MAC address lock (optional).
Multi-factor authentication is supported in various forms: Google Authenticator is built-in; Duo Security can be added with a post_auth plugin; and LastPass can be added with a post_auth plugin.
Access Control rules can specify user or group access to IP address and subnets, and allow or disallow direct VPN client connections.
Easy configurable AMI with pre-installed OpenVPN on Ubuntu Server 20.04
INSTALLATION VIA AWS MARKETPLACE
Kindly click on the below link to install the server via AWS Marketplace:
To verify the installation, follow the below instructions
Step 1. Connect to SSH
In a terminal window, use the ssh command to connect to the instance. You specify the user name for your instance, and the public DNS name or IPv6 address for your instance, the path and file name of the private key (.pem).
ssh ubuntu@publicIP -i [Path of key pair file]
If it shows access denied message run the following command , then run the above command again to connect via ssh.
chmod 400 [Path of key pair file]